LISTSERV - SCIENTIFIC-LINUX-ERRATA Archives

Synopsis:          Important: bind security update
Advisory ID:       SLSA-2016:0459-1
Issue Date:        2016-03-16
CVE Numbers:       CVE-2016-1285
                   CVE-2016-1286
--

A denial of service flaw was found in the way BIND parsed signature
records for DNAME records. By sending a specially crafted query, a remote
attacker could use this flaw to cause named to crash. (CVE-2016-1286)

A denial of service flaw was found in the way BIND processed certain
control channel input. A remote attacker able to send a malformed packet
to the control channel could use this flaw to cause named to crash.
(CVE-2016-1285)

After installing the update, the BIND daemon (named) will be restarted
automatically.
--

SL5
  x86_64
    bind-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-debuginfo-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-debuginfo-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-libs-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-libs-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-sdb-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-utils-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-chroot-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-devel-9.3.6-25.P1.el5_11.8.x86_64.rpm
    bind-libbind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-libbind-devel-9.3.6-25.P1.el5_11.8.x86_64.rpm
    caching-nameserver-9.3.6-25.P1.el5_11.8.x86_64.rpm
  i386
    bind-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-debuginfo-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-libs-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-sdb-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-utils-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-chroot-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
    bind-libbind-devel-9.3.6-25.P1.el5_11.8.i386.rpm
    caching-nameserver-9.3.6-25.P1.el5_11.8.i386.rpm
SL6
  x86_64
    bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
    bind-libs-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-libs-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
    bind-utils-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
    bind-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
    bind-chroot-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
    bind-devel-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-devel-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
    bind-sdb-9.8.2-0.37.rc1.el6_7.7.x86_64.rpm
  i386
    bind-debuginfo-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-libs-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-utils-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-chroot-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-devel-9.8.2-0.37.rc1.el6_7.7.i686.rpm
    bind-sdb-9.8.2-0.37.rc1.el6_7.7.i686.rpm
SL7
  x86_64
    bind-debuginfo-9.9.4-29.el7_2.3.i686.rpm
    bind-debuginfo-9.9.4-29.el7_2.3.x86_64.rpm
    bind-libs-9.9.4-29.el7_2.3.i686.rpm
    bind-libs-9.9.4-29.el7_2.3.x86_64.rpm
    bind-libs-lite-9.9.4-29.el7_2.3.i686.rpm
    bind-libs-lite-9.9.4-29.el7_2.3.x86_64.rpm
    bind-utils-9.9.4-29.el7_2.3.x86_64.rpm
    bind-9.9.4-29.el7_2.3.x86_64.rpm
    bind-chroot-9.9.4-29.el7_2.3.x86_64.rpm
    bind-devel-9.9.4-29.el7_2.3.i686.rpm
    bind-devel-9.9.4-29.el7_2.3.x86_64.rpm
    bind-lite-devel-9.9.4-29.el7_2.3.i686.rpm
    bind-lite-devel-9.9.4-29.el7_2.3.x86_64.rpm
    bind-pkcs11-9.9.4-29.el7_2.3.x86_64.rpm
    bind-pkcs11-devel-9.9.4-29.el7_2.3.i686.rpm
    bind-pkcs11-devel-9.9.4-29.el7_2.3.x86_64.rpm
    bind-pkcs11-libs-9.9.4-29.el7_2.3.i686.rpm
    bind-pkcs11-libs-9.9.4-29.el7_2.3.x86_64.rpm
    bind-pkcs11-utils-9.9.4-29.el7_2.3.x86_64.rpm
    bind-sdb-9.9.4-29.el7_2.3.x86_64.rpm
    bind-sdb-chroot-9.9.4-29.el7_2.3.x86_64.rpm
  noarch
    bind-license-9.9.4-29.el7_2.3.noarch.rpm

- Scientific Linux Development Team